Buffer overflow in Microsoft Silverlight

CVE-2015-6166

Microsoft Silverlight 5 before 5.1.41105.00 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read or write access) via unspecified open and close requests, aka "Microsoft Silverlight RCE Vulnera…

Vulnerability class: Buffer Overflow

EPSS: 0.205 (95.7th percentile) — read the EPSS interpretation.

Affected products

Microsoft Silverlight — versions 5.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

MS15-129 (x_refsource_MS, vendor-advisory)
1034321 (vdb-entry, x_refsource_SECTRACK)